App 13

Learn to reverse engineer through some common application security methods.
Forum rules
DO NOT POST ANSWERS OR SPOILERS! [IE: Mission Links, Mission File Names/Pages, Scripts/Code, etc.]

Posting these will result in warnings/bans!

App 13

Post by YaRi on Thu Jul 03, 2008 12:32 pm
([msg=6468]see App 13[/msg])

Hi,
I'm sure it's just a false positive but be aware that app13win.zip will trigger at least Avast Antivirus saying that it is infected with a trojan. Can admins confirm that this is safe?
Thanks,
YaRi
YaRi
New User
New User
 
Posts: 1
Joined: Thu Jul 03, 2008 12:27 pm
Blog: View Blog (0)


Re: App 13

Post by testb0t on Sat Jul 19, 2008 8:51 am
([msg=7824]see Re: App 13[/msg])

No virus activity detected, it did not trigger KAV.

Maybe it's just too active protecting itself? :mrgreen:
testb0t
New User
New User
 
Posts: 20
Joined: Fri Jul 18, 2008 12:05 pm
Location: E/E/T
Blog: View Blog (0)


Re: App 13

Post by Qubit on Sat Jul 19, 2008 6:36 pm
([msg=7854]see Re: App 13[/msg])

Scan taken on 19 Jul 2008 23:37:33 (GMT)
A-Squared
Found nothing
AntiVir
Found PCK/YodaProt
ArcaVir
Found nothing
Avast
Found Win32:Atraps-AT
AVG Antivirus
Found nothing
BitDefender
Found Backdoor.Bot.19721
ClamAV
Found nothing
CPsecure
Found BackDoor.W32.Rbot.eaq
Dr.Web
Found nothing
F-Prot Antivirus
Found nothing
F-Secure Anti-Virus
Found nothing
Fortinet
Found nothing
Ikarus
Found Backdoor.Win32.IRCBot.bg
Kaspersky Anti-Virus
Found nothing
NOD32
Found nothing
Norman Virus Control
Found nothing
Panda Antivirus
Found nothing
Sophos Antivirus
Found Mal/Packer
VirusBuster
Found nothing
VBA32
Found nothing
To everyone is given the key to the gates of heaven, but the same key opens the gate of hell.
Qubit
New User
New User
 
Posts: 17
Joined: Tue Jul 15, 2008 8:28 pm
Blog: View Blog (0)


Re: App 13

Post by testb0t on Thu Aug 07, 2008 9:53 am
([msg=9022]see Re: App 13[/msg])

Ah yes, the VirusTotal site...
testb0t
New User
New User
 
Posts: 20
Joined: Fri Jul 18, 2008 12:05 pm
Location: E/E/T
Blog: View Blog (0)


Re: App 13

Post by NWMonster on Tue Aug 12, 2008 1:52 am
([msg=9436]see Re: App 13[/msg])

if you unpacked it,then you will found it clean.
NWMonster
New User
New User
 
Posts: 2
Joined: Mon Aug 11, 2008 11:54 pm
Blog: View Blog (0)


Re: App 13

Post by leonidas_heaven on Mon Sep 08, 2008 5:52 am
([msg=11190]see Re: App 13[/msg])

Hey Monster can you tell me a suitable Unpacker for it.It always hangs my computer every time i try to open it.
Challenges are not meant to be taken easily,rather they are meant to be taken Seriously
leonidas_heaven
Experienced User
Experienced User
 
Posts: 66
Joined: Sun Jun 01, 2008 5:20 am
Location: Uttarakhand,India
Blog: View Blog (0)


Re: App 13

Post by testb0t on Mon Sep 08, 2008 7:17 am
([msg=11191]see Re: App 13[/msg])

leonidas, try using 7-Zip, if it doesn't help, then I still have that old WinZip, that still works on W9x, I can give that to you, somehow. :mrgreen:

Btw, some l33t-n00b AVs, like F-Secure, etc, may block opening of files.
testb0t
New User
New User
 
Posts: 20
Joined: Fri Jul 18, 2008 12:05 pm
Location: E/E/T
Blog: View Blog (0)


Re: App 13

Post by leonidas_heaven on Mon Sep 08, 2008 8:07 am
([msg=11192]see Re: App 13[/msg])

I think you don't understand what i mean to ask.I have unzipped app13 and i am having app13.exe file.But it is still packed with Yoda's protector.so may be because of that it is hanging my computer.So for yoda's protector i am asking a Unpacker.

Hope you understand my point.Can you tell me what is the reason for the hanging of my computer..
Challenges are not meant to be taken easily,rather they are meant to be taken Seriously
leonidas_heaven
Experienced User
Experienced User
 
Posts: 66
Joined: Sun Jun 01, 2008 5:20 am
Location: Uttarakhand,India
Blog: View Blog (0)


Re: App 13

Post by mgscrk on Mon Sep 08, 2008 12:29 pm
([msg=11204]see Re: App 13[/msg])

You can unpack it manually. There are some good tutorials about it, you just have to do a bit of research. If you still find it difficult, look for olly scripts, I'm sure you'll find a bunch of them. Use google...
Edit:
Okay, just let me tell you one more thing... Yoda's protector is not the only protection on this one, so neutralizing all the protections is probably more time-consuming than thinking of an alternate solution...Just read the challenge descriptiion again...
User avatar
mgscrk
New User
New User
 
Posts: 7
Joined: Tue Sep 02, 2008 5:47 pm
Blog: View Blog (0)


Re: App 13

Post by testb0t on Thu Sep 11, 2008 8:07 am
([msg=11399]see Re: App 13[/msg])

leonidas_heaven wrote:I think you don't understand what i mean to ask.I have unzipped app13 and i am having app13.exe file.But it is still packed with Yoda's protector.so may be because of that it is hanging my computer.So for yoda's protector i am asking a Unpacker.

Hope you understand my point.Can you tell me what is the reason for the hanging of my computer..



Damn I'm ever noobier than I thought, how do you find out what protection the program uses? 0.o
testb0t
New User
New User
 
Posts: 20
Joined: Fri Jul 18, 2008 12:05 pm
Location: E/E/T
Blog: View Blog (0)


Next

Return to Application

Who is online

Users browsing this forum: No registered users and 0 guests